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DETAILED ACTION 
Response to Arguments 

Applicant's arguments filed 5/21/07 have been fully considered but they are not persuasive. 
Applicant argues the following: 

a) Since the claims of the present application are directed to transmitting authenticated messages, not 
packets of data, the RFC791 reference is not material. 

b) There is no teaching or suggestion whatsoever in either reference for ascertaining or determining if a 
message is too large to be received by a target entity. On the contrary, the RFC791 reference is only 
concerned about the bandwidth of the network itself, not any devices or entities attached to the network. 

c) Since neither reference teaches or suggests ascertaining the ability of a target entity to process or not 
process an authentication message, the proposed combination does not teach the present invention as 
claimed. 

d) There is not motivation, teaching or suggestion whatsoever, in either reference, to combine both 
references. RFC791 deals addresses bandwidth while the background of the present invention 
addresses authenticating messages for security purposes. 

With respect to a), examiner respectfully disagrees. RFC791 teaches a way of traversing packets 
from a sending destination to a receiving destination. Messages are known in the art to be sent from one 
destination to another in packets. It is examiner's understanding that applicant's messages are 
encapsulated in packets. If this is not the case, applicant is requested to clarify how it is that the 
messages are sent. Based on this understanding, the difference between RFC791 and the claimed 
invention is that the claim invention claims that the messages are authentication messages, as explained 
in the previous office action. Since these authenticated messages are still transmitted in packets, 
examiner maintains that the RFC791 reference is material. 

With respect to b), examiner respectfully disagrees. RFC791 teaches, "fragmentation of an 
internet datagram is necessary when it originates in a local net that allows a large packet size and must 
traverse a local net that limits packets to a smaller size to reach its destination." The cited destination is 
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interpreted as the target entity. The RFC791 reference is not only concerned about the bandwidth of the 
network itself, it merely limits the network bandwidth so that the smaller packets may reach their 
destination. If this clarification is not sufficient for applicant, examiner would like to state that it is possible 
to view the local net that limits packets to a smaller size as the claimed target entity. Or the local net 
could possibly be comprised of only one computer, thus meaning the bandwidth of the network applies to 
just that one computer. 

With respect to c), examiner respectfully disagrees. As the claims currently stand, do not 
ascertain the ability of a target entity to process or not process an authentication message. Further, the 
claims do not cite any processing or not processing of authentication messages by a target entity. 

With respect to d), examiner would like to point applicant to the preface of RFC791 , wherein the 
authors state that "this edition revises aspects of addressing, error handling, option codes, and the 
security, precedence, compartments, and handling restriction features of the internet protocol. That is 
motivation and suggestion enough to combine both references. 

CLAIMS PRESENTED 

Claims 1-23 are presented. 

CLAIM REJECTIONS 

Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 
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Claims 1-23 are rejected under 35 U.S.C. 103(a) as being unpatentable over RFC791: 
Internet Protocol - DARPA Internet Program Protocol Specification, hereinafter 
RFC791 , and further in view of applicant's disclosure of prior art. 

As per claims 1 and 12: 

A method of transmitting an authentication message in a switching Fabric, comprising: 
I. Ascertaining if the authentication message has a length that exceeds the message length 
supported by a target entity; and either: 

a. fragmenting the authentication message into message fragments if the length of the 
message exceeds the message length supported by the target entity; and sequentially 
sending the message fragments one by one across the Fabric; or 

b. sending the authentication message in its entirety if the length of the authentication 
message is less than the message length supported by the target entity. 

RFC791 teaches: 

I . [see page 12 of 50] "Fragmentation of an internet datagram is necessary when it originates in a 
local net that allows a large packet size and must traverse a local net that limits packets to a 
smaller size to reach its destination." 

a. [see page 12 of 50] "The internet fragmentation and reassembly procedure needs to be able to 
break a datagram into an almost arbitrary number of pieces that can be later reassembled." 

b. [see above rejection of I, further wherein it is obvious that if an internet datagram does not need 
to be fragmented if the message length is less than the message length supported by the target 
entity. 

RFC791 does not implicitly teach that the messages that are fragmented are specifically "authentication" 
messages. As per applicant's admittance of prior art disclosed in applicant's background, it would have 
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been obvious at the time of the invention to one of ordinary skill in the art to implement RFC791 in order 
to fragment authentication messages in a switching fabric, [see application, paragraphs 0002-0005] 

As per claims 2 and 13: 

The method of claim 1 , wherein fragmenting the authentication message into message fragments further 
comprises setting a fragmentation bit in each message fragment except the last message fragment. 
[see RFC791, page 12 of 50, "more-fragments flag'] 

As per claims 3 and 14: 

The method of claim 2, wherein the setting of the fragmentation bit of one of the message fragments 
indicates that a subsequent message fragment is to be sent. 
[see RFC791, page 12 of 50, "more-fragments flag"] 

As per claims 4 and 15: 

The method of claim 1 , wherein fragmenting the authentication message into message fragments further 
comprises resetting a fragmentation bit in the last message fragment of the authentication message. 

[see RFC791, page 12 of 50, "The more-fragments flag indicates (by being reset) the last 

fragment'] 

As per claims 5 and 16: 

The method of claim 1 , wherein fragmenting the authentication message into message fragments further 
comprises labeling each message fragment with a Sequence Number. 
[see RFC791, page 12 of 50, "identification field"] 

As per claim 6 and 19: 

The method of claim 4, wherein the resetting of the fragmentation bit in the fragmentation field of the last 
message fragment indicates that no subsequent message fragments will follow the last message 
fragment. 
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[see rejection of claim 4, further wherein it is clear that if the fragmentation bit indicates that the 
received message fragment is the last message fragment then there will be no subsequent 
messages following the "last message fragment.] 

As per claims 7 and 22: 

The method of claim 1 , wherein the message comprises, but is hot limited to, authentication information 
and contains one or more of the following fields: 

a field that identifies the authentication message as an authentication message; and 

an authentication command code field that identifies the particular authentication message of an 
authentication protocol. 

[see RFC791, page 18 of 50, "Protocol"] 

[see application, paragraph 0006] 

As per claims 8 and 23: 

The method of claim 6, wherein the authentication protocol comprises but is not limited to the following 
protocols: DH-CHAP, SRP, or FCAP. 

[see application, paragraph 0006] 

As per claim 9: 

The method of claim 1 , wherein the target entity is an end device in the Fabric. 
[see application, paragraph 0008] 

As per claim 10: 

The method of claim 1 , wherein the target entity is the Fabric. 
[see application, paragraph 0008] 

As per claim 11: 
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The method of claim 6, wherein the target entity either accepts or discards the message fragment based 

on the value of the Sequence Number. 

[see RFC791, page 12 of 50] "The identification field is used to distinguish the fragments of one 
datagram from those of another. The originating protocol module of an Internet datagram sets 
the identification field to a value that must be unique for that source-destination pair and protocol 
for the time the datagram will be active in the Internet system." 

The target entity reassembles the packet fragments with other packet fragments based on the 

identification field. 

As per claim 17: 

The method of claim 16, further comprising: 

receiving the message fragments at the receiving entity; 

[see rejection of claim 1] 
ascertaining the value of the Sequence Number for each of the received fragments, and either: 

[see rejection of claim 6] 

accepting the content of the message fragment if the received Sequence Number is different than 
the Sequence Number carried in the previously received message fragment; or 

[see rejection of claim 11] 
discarding the content of the message fragment if the received Sequence Number is equal to the 
Sequence Number carried in the previously received message. 

[see rejection of claim 11] 

As per claim 18: 

The method of claim 16, further comprising: 

receiving the message fragments at the receiving entity; 

[see rejection of claim 1] 
ascertaining the status of a fragmentation bit for each of the received fragments, and either 
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[see rejection of claims 2 and 3] 
receiving at least one more of the message fragments at the receiving entity if the fragmentation bit for 
the most recently received message fragment is set; or 

[see rejection of claim 4] 

not receiving additional message fragments associated with the authentication method at the receiving 
entity if the fragmentation bit for the most recently received message fragment is reset. 
[see rejection of claim 6] 

Claims 20-21 are rejected under 35 U.S.C. 103(a) as being unpatentable over RFC791 
and applicant's prior art as applied to claim 12 above, and further, in view of Official 
Notice of well-known practices in the art. 
As per claim 20: 

The method of claim 12, further comprising the target entity sending a second authentication message to 
the initiating entity in response to the authentication message. 

The RFC791 reference has been discussed above. RFC791 does not explicitly cite that the 
target entity sends a second authentication message to the initiating entity in respond to the first 
authentication message. The process of mutual authentication is well known in the art. Mutual 
authentication or two-way authentication refers to two parties authenticating each other suitably. It would 
have been obvious at the time of the invention to one of ordinary skill in the art to modify the teachings of 
RFC791 to include mutual authentication. 

As per claim 21: 

The method of claim 20, wherein the target entity sends the second authentication message to the 
initiating entity in response to the authentication message by: 

ascertaining at the target entity if the second authentication message has a length that exceeds the 
message length supported by the initiating entity; and either: 
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fragmenting the second authentication message into second message fragments if the length of 
the second authentication message exceeds the message length supported by the initiating entity; and 
either: 

sequentially sending the second message fragments one by one across the Fabric to the initiating 
entity; or 

sending the second authentication message in its entirety to the initiating entity if the length of the 
second authentication message is less than the message length supported by the initiating entity. 
[see rejection of claims 1 and 20 above] 

CONCLUSION 

THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time policy as set forth 
in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE MONTHS from 
the mailing date of this action. In the event a first reply is filed within TWO MONTHS of the mailing date 
of this final action and the advisory action is not mailed until after the end of the THREE-MONTH 
shortened statutory period, then the shortened statutory period will expire on the date the advisory action 
is mailed, and any extension fee pursuant to 37 CFR 1 .136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later than SIX 
MONTHS from the mailing date of this final action. 

POINTS OF CONTACT 

*. Any response to this Office Action should be faxed to (571) 273-8300 or mailed to: 

Commissioner for Patents 
P.O. Box 1450 
Alexandria, VA 22313-1450 

Hand-delivered responses should be brought to 
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Randolph Building 
401 Dulaney Street 
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this application or proceeding is assigned is 571-273-8300. 
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